[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 13 21:53:56 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9abf4dc3 by Salvatore Bonaccorso at 2025-06-13T22:53:32+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,11 +7,11 @@ CVE-2025-6035 (A flaw was found in GIMP. An integer overflow vulnerability exist
 	NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/13518
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/548bc3a46d54711d974aae9ce1bce291376c0436 (GIMP_3_0_4)
 CVE-2025-6030 (Use of fixed learning codes, one code to lock the car and the other co ...)
-	TODO: check
+	NOT-FOR-US: Autoeastern Smart Keyless Entry System
 CVE-2025-6029 (Use of fixed learning codes, one code to lock the car and the other co ...)
-	TODO: check
+	NOT-FOR-US: KIA-branded Aftermarket Generic Smart Keyless Entry System
 CVE-2025-49597 (handcraftedinthealps goodby-csv is a highly memory efficient, flexible ...)
-	TODO: check
+	NOT-FOR-US: handcraftedinthealps goodby-csv
 CVE-2025-49587 (XWiki is an open-source wiki software platform. When a user without sc ...)
 	NOT-FOR-US: XWiki
 CVE-2025-49586 (XWiki is an open-source wiki software platform. Any XWiki user with ed ...)
@@ -49,7 +49,7 @@ CVE-2025-48825 (RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.7.0 contain
 CVE-2025-46783 (Path traversal vulnerability exists in RICOH Streamline NX V3 PC Clien ...)
 	NOT-FOR-US: RICOH
 CVE-2025-46096 (Directory Traversal vulnerability in solon v.3.1.2 allows a remote att ...)
-	TODO: check
+	NOT-FOR-US: solon
 CVE-2025-46060 (Buffer Overflow vulnerability in TOTOLINK N600R v4.3.0cu.7866_B2022506 ...)
 	NOT-FOR-US: TOTOLINK
 CVE-2025-45988 (Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0 ...)
@@ -63,9 +63,9 @@ CVE-2025-45985 (Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC
 CVE-2025-45984 (Blink routers BL-WR9000 V2.4.9, BL-AC1900 V1.0.2, BL-AC2100_AZ3 V1.0.4 ...)
 	NOT-FOR-US: Blink routers
 CVE-2025-36633 (In Tenable Agent versions prior to 10.8.5 on a Windows host, it was fo ...)
-	TODO: check
+	NOT-FOR-US: Tenable Agent
 CVE-2025-36631 (In Tenable Agent versions prior to 10.8.5 on a Windows host, it was fo ...)
-	TODO: check
+	NOT-FOR-US: Tenable Agent
 CVE-2025-36506 (External control of file name or path issue exists in RICOH Streamline ...)
 	NOT-FOR-US: RICOH
 CVE-2025-29902 (Remote code execution that allows unauthorized users to execute arbitr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9abf4dc320171d6f49dd3b42a7bce685ef5d8a0e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9abf4dc320171d6f49dd3b42a7bce685ef5d8a0e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250613/ac676298/attachment.htm>

More information about the debian-security-tracker-commits mailing list